CVE-2023-33378 Information

Description

Connected IO v2.1.0 and prior has an argument injection vulnerability in its AT command message in its communication protocol enabling attackers to execute arbitrary OS commands on devices.

Reference

https://claroty.com/team82/disclosure-dashboard/cve-2023-33378 https://www.connectedio.com/products/routers